Sort of a continuation of the last post. This still uses FreeBSD, pfSense, Juniper SRX but it could fairly easily be adapted to OpnSense (fork/clone of pfSense), and other network vendor appliances.

Sometimes you need to setup a tunnel between different kinds of endpoints.

Updated to include IPv6

I got the opportunity to deploy some HA SRX clusters, and decided to make use of the management interface.

This has been updated and tested working with JunOS 12.3X48-D35.7

The last time I moved, I went through the unfortunate bit of having to change Hurricane Electric tunnel servers.

I like IPSec because it was designed to bind 2 networks together from the beginning.

Rancid is a collection of perl bits which are able to login to various network devices and extract their configurations.